Wazuh is sponsoring the Bsides Security Conference in Chicago, taking place on Saturday July 15th, 2017. Come and say hello! It is a great oportunity to meet part of the team and learn more about Wazuh.
We will be doing a 3-hour workshop. Check the content below. Looking forward to seeing you all.
Host-based security monitoring has become increasingly important as the number and severity of threats keeps growing. In addition, network security monitoring tools are now harder to deploy, and not as efficient as they used to be.
Another driver for the adoption of host-based monitoring tools is the increased need to comply with security regulations (e.g. PCI DSS).
Wazuh started as a fork of the OSSEC project, and has quickly evolved into a more comprehensive solution. It now integrates OpenSCAP and Elastic Stack providing additional security monitoring and analysis capabilities.
In this session we will show you how to deploy and use Wazuh to:
- Detect intrusion attempts using rules to automatically analyze log data
- Monitor files integrity, detecting changes in system binaries or configuration files
- Index and store log data with Elasticsearch to meet PCI DSS compliance requirements
- Identify malware (e.g. kernel level rootkits) and system anomalies
- Monitor systems configuration to ensure they meet standards and hardening guides
Santiago Bassett and Pedro Sanchez
Santiago is the founder of Wazuh, and is known for his contributions to OSSIM (Open Source Security Information Management) and OSSEC projects. He has over 15 years of experience in IT Security, covering advanced network security implementations with Open Source technologies. His solid technical knowledge of intrusion detection and security management systems correlates with an intrinsic ability to design, develop and implement security software. He has been a speaker in other Security conferences such as RootedCon, Campus Party, OSSECCon and previous editions of Cornerstones of Trust.
Pedro is leading the development team at Wazuh, Inc. and managing the project roadmap. He has worked with large enterprise projects, implementing security monitoring solutions based on open source tools. Pedro has over 10 years of experience building projects from scratch, covering different aspects as development, product management, user engagement and user experience.